- Safety of network-mobile code.
A java program must play only inside its sandbox.
- Can do anything within the boundaries of its sandbox, but cannot take any action outside boundaries.
- It cannot create a new process, load a new dynamic library and directly call a native method.
- Reading and writing to the local disk is not possible .
- Make network connections to any other host than the own server.
-Welcomes code from any source.
-Restricts code from untrusted sources , by making a distinction between the standard java API and the other sources.
-Hence, there is always virus free or bug free code ( Taken care by sandbox).
- can create a sanbox ( using the java.security framework )and as well use sandbox created by others.
Components of sandbox:
- Class loader architecture (Verifies the class files at load time).
- Class file verifier( Verifies the integrity at runtime )
- Security manager and java API
No comments:
Post a Comment